diff options
| author | tb <> | 2023-05-26 13:44:05 +0000 |
|---|---|---|
| committer | tb <> | 2023-05-26 13:44:05 +0000 |
| commit | 33f6bc89aff8b9c4a1a456d40bfb863802115b1a (patch) | |
| tree | daccb0dca5b73ba21fde8f92a694ce06f7aeebf4 /src/lib/libssl/ssl_lib.c | |
| parent | 38d31da6097a882f2d9c61b4831257122ba27fc1 (diff) | |
| download | openbsd-33f6bc89aff8b9c4a1a456d40bfb863802115b1a.tar.gz openbsd-33f6bc89aff8b9c4a1a456d40bfb863802115b1a.tar.bz2 openbsd-33f6bc89aff8b9c4a1a456d40bfb863802115b1a.zip | |
Move verified_chain from SSL to SSL_HANDSHAKE
This is a better version of the fix for the missing pointer invalidation
but a bit larger, so errata got the minimal fix.
tested by jcs
ok jsing
Diffstat (limited to 'src/lib/libssl/ssl_lib.c')
| -rw-r--r-- | src/lib/libssl/ssl_lib.c | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/src/lib/libssl/ssl_lib.c b/src/lib/libssl/ssl_lib.c index 68e60a5481..f6c9406139 100644 --- a/src/lib/libssl/ssl_lib.c +++ b/src/lib/libssl/ssl_lib.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssl_lib.c,v 1.309 2023/04/23 18:51:53 tb Exp $ */ | 1 | /* $OpenBSD: ssl_lib.c,v 1.310 2023/05/26 13:44:05 tb Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -900,7 +900,9 @@ SSL_get_peer_cert_chain(const SSL *s) | |||
| 900 | STACK_OF(X509) * | 900 | STACK_OF(X509) * |
| 901 | SSL_get0_verified_chain(const SSL *s) | 901 | SSL_get0_verified_chain(const SSL *s) |
| 902 | { | 902 | { |
| 903 | return s->verified_chain; | 903 | if (s->s3 == NULL) |
| 904 | return NULL; | ||
| 905 | return s->s3->hs.verified_chain; | ||
| 904 | } | 906 | } |
| 905 | 907 | ||
| 906 | /* | 908 | /* |